Loading...

XML

Word

Printable

Details

Type: Patch
Resolution: Done
Priority: Major
Fix Version/s: None
Affects Version/s: JBossAS-4.0.4.GA
Component/s: JMS (JBossMQ), Security
Labels:
None

SFDC Cases Counter:
SFDC Cases Links:

Description

Currently the ssl socket factories don't have any notion of picking up settings like the enabled cipher suites from system properties or the security domain in the case of the org.jboss.security.ssl.DomainSocketFactory. We should be able to set any JSSE SSLSocketFactory setting from these external values by injecting a fully configured socket factory:

<mbean code="org.jboss.mq.il.uil2.UILServerILService"
name="jboss.mq:service=InvocationLayer,type=SSLUIL2">
...
<attribute name="ServerSocketFactoryBean">
attributeClass="org.jboss.security.ssl.DomainServerSocketFactory"
serialDataType="javaBean">
<property name="bindAddress">${jboss.bind.address}</property>
<property name="securityDomain">java:/jaas/rmi-ssl</property>
<property name="wantsClientAuth">true</property>
<property name="needsClientAuth">true</property>
<property name="CiperSuites">TLS_DHE_DSS_WITH_AES_128_CBC_SHA</property>
<property name="Protocols">SSLv2Hello,SSLv3,TLSv1</property>
</attribute>
</mbean>

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending
- Thumbnails
- List
- Download All

jbossmq.jar
494 kB
2006/10/11 3:04 PM
sslext-uil2-service.xml
4 kB
2006/10/11 3:06 PM

Issue Links

is incorporated by

JBPAPP-1279 JBAS-3755 : Expose all SSL socket factory settings via properties or attributes for UIL2

Resolved

Activity

People

Assignee:: Unassigned

Reporter:: Scott Stark (Inactive)

Votes:: 0 Vote for this issue

Watchers:: 0 Start watching this issue

Dates

Due:: 2006/10/16

Created:: 2006/10/11 10:58 AM

Updated:: 2011/03/22 2:58 PM

Resolved:: 2006/11/13 10:57 AM